Fork me on GitHub

April 2018

Wire App: Bot Authentication

The following URL is the one required to register a new Wire App Bot provider: https://prod-nginz-https.wire.com/provider/login

When crafting your API call to register a new bot provider, you should be using the POST method.

For the headers use the following key:value pair:

Content-Type: application/json

The Body of the request should be the following:

{"email": "The email you registered the provider with", "password": "The password you received after registering as a bot provider"}

I used Postman, a piece of software, that makes API development easier. It can be obtained here: https://www.getpostman.com/

If you prefer to use cURL, the command would be as follows:

Wire App: Bot Provider Registration

The following URL is the one required to register a new Wire App Bot provider: https://prod-nginz-https.wire.com/provider/register

When crafting your API call to register a new bot provider, you should be using the POST method.

For the headers use the following key:value pair:

Content-Type: application/json

The Body of the request should be the following:

{"name": "Name of the Bot", "email": "Email to register the bot under", "url": "enter your website or just use https://","description": "Description about your bot"}

Once you submit your API call, check your email for a registration verification link. 

I used Postman, a piece of software, that makes API development easier. It can be obtained here: https://www.getpostman.com/

Wire App:Bot SDK API Calls

These are the API calls I've found which are required to register a new bot for the Wire secure messaging application:

Bot API Calls

Bot/Account Provider Registration: https://prod-nginz-https.wire.com/provider/register
Bot Authentication: https://prod-nginz-https.wire.com/provider/login
Bot Service Registration: https://prod-nginz-https.wire.com/providers/services

Brisingr: Fortnite Tracker

I wanted to add a new module into Brisingr for anyone that wanted to pull their Fortnite stats. Started off with some Google searches to see if there was anything out there for an official API or one to call. I found an API through the Tracker Network, however, it appeared to be broken based on the API call responses I received.

There had to be some where where the Tracker Network was getting their stats from and I went search further.

I found in the Fortnite logs the following URLs which I have labeled as to what they appear to call and respond with data wise:

JIS-CTF Walkthrough

JIS-CTF
WARNING: There will be spoilers to obtaining the 5 keys on JIS-CTF VM from Vulnhub. This is your warning! If you wish to penetration test this machine, do not scroll down much further.
General disclaimer: I am by no means an expert penetration tester nor do I have a lot of experience doing penetration testing. This walkthrough is from the perspective of an amateur whom is trying to become better. The goal is for me to eventially take the OCSP. That being said, I had a bit of help from some colleagues from my company getting started but they by no means gave me the answers. I will be posting some of my hardships from a beginner perspective.